VYPR
Vendor

Gira Giersiepen

Products
3
CVEs
5
Across products
5
Status
Private

Products

3

Recent CVEs

5
  • CVE-2020-10794CriMay 7, 2020
    risk 0.64cvss 9.8epss 0.01

    Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to unauthenticated path traversal that allows an attacker to download the application database. This can be combined with CVE-2020-10795 for remote root access.

  • CVE-2023-33277HigJun 29, 2023
    risk 0.49cvss 7.5epss 0.01

    The web interface of Gira Giersiepen Gira KNX/IP-Router 3.1.3683.0 and 3.3.8.0 allows a remote attacker to read sensitive files via directory-traversal sequences in the URL.

  • CVE-2020-10795HigMay 7, 2020
    risk 0.47cvss 7.2epss 0.04

    Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to authenticated remote code execution via the backup functionality of the web frontend. This can be combined with CVE-2020-10794 for remote root access.

  • CVE-2023-33276MedJun 30, 2023
    risk 0.40cvss 6.1epss 0.00

    The web interface of Gira Giersiepen Gira KNX/IP-Router 3.1.3683.0 and 3.3.8.0 responds with a "404 - Not Found" status code if a path is accessed that does not exist. However, the value of the path is reflected in the response. As the application will reflect the supplied path…

  • CVE-2023-2739MedMay 16, 2023
    risk 0.28cvss 4.3epss 0.00

    A vulnerability classified as problematic was found in Gira HomeServer up to 4.12.0.220829 beta. This vulnerability affects unknown code of the file /hslist. The manipulation of the argument lst with the input debug%27"><img%20src=x%20onerror=alert(document.cookie)> leads to…